Scribd
Upload
60 views4 pages

Conf Basic A

The document provides instructions for configuring basic access to a router or switch, including: 1. Configuring login passwords, usernames, and a banner message. 2. Enabling access via usernames and passwords for console and VTY lines. 3. Configuring secure access via SSH including generating RSA keys. 4. Configuring interfaces including IP addresses.

Uploaded by

Ernesto Barco Cuellar
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
60 views4 pages

Conf Basic A

The document provides instructions for configuring basic access to a router or switch, including: 1. Configuring login passwords, usernames, and a banner message. 2. Enabling access via usernames and passwords for console and VTY lines. 3. Configuring secure access via SSH including generating RSA keys. 4. Configuring interfaces including IP addresses.

Uploaded by

Ernesto Barco Cuellar
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 4

CONFIGURACIÓN BÁSICA DE ACCESO A UN ROUTER

PARTE 1: CONFIGURACION DE CONTRASEÑAS DE ACCESO Y MENSAJE DE INICIO

Router>enable
Router#configure terminal
Router(config)#hostname R1
R1(config)#security password min-length 8
R1(config)#enable secret santacruz
R1(config)#no ip domain-lookup
R1(config)#line console 0
R1(config-line)#password andresibanez
R1(config-line)#exec-timeout 2 0
R1(config-line)#login
R1(config-line)#logging synchronous
R1(config-line)#exit
R1(config)#line vty 0 4
R1(config-line)#password andresibanez
R1(config-line)#exec-timeout 2 0
R1(config-line)#login
R1(config-line)#exit
R1(config)#service password-encryption
R1(config)#banner motd $"ESTE EQUIPO ES PRIVADO Y EL ACCESO ES RESTRINGIDO.
DESCONECTESE INMEDIATAMENTE SI NO ES UN USUARIO AUTORIZADO. LOS
INFRACTORES SERAN SOMETIDOS A LA LEY"$
R1(config)#end
R1#copy running-config startup-config
R1#

PARTE 2: CONFIGURACION DE ACCESO MEDIANTE USUARIO Y CONTRASEÑA


R1#configure terminal
R1(config)#username edmundo secret andresibanez
R1(config)#line console 0
R1(config-line)#login local
R1(config-line)#exit
R1(config)#line vty 0 4
R1(config-line)#login local
R1(config-line)#exit
R1(config)#login block-for 30 attempts 2 within 10
R1(config)#login on-failure log
R1(config)#login on-success log
R1(config)#end
R1#copy running-config startup-config
R1#
PARTE 3: CONFIGURACIÓN DE ACCESO REMOTO MEDIANTE SSH
R1#configure terminal
R1(config)#ip domain-name competencia.com
R1(config)#username edmundo privilege 15 secret andresibanez
R1(config)#line vty 0 4
R1(config-line)#privilege level 15
R1(config-line)#login local
R1(config-line)#transport input ssh
R1(config-line)#exit
R1(config)#crypto key zeroize rsa
% No Signature RSA Keys found in configuration.

R1(config)#crypto key generate rsa

The name for the keys will be: R1.competencia.com


Choose the size of the key modulus in the range of 360 to 2048 for your
General Purpose Keys. Choosing a key modulus greater than 512 may take
a few minutes.

How many bits in the modulus [512]: 1024


% Generating 1024 bit RSA keys, keys will be non-exportable...[OK]

R1(config)#ip ssh time-out 90


R1(config)#ip ssh authentication-retries 2
R1(config)#exit
R1#copy running-config startup-config
R1#

PARTE 4: CONFIGURACIÓN DE INTERFACE FAST-GIGA-ETHERNETH

R1#enable
R1#configure terminal
R1(config)#interface fa0/0
R1(config-if)#ip address 192.168.100.2 255.255.255.0
R1(config-if)#description "conexionLAN"
R1(config-if)#no shutdown
R1(config-if)#exit
R1(config)#exit
R1#copy running-config startup-config

PARTE 5: CONFIGURACIÓN DE INTERFACE SERIAL DCE

R1#enable
R1#configure terminal
R1(config)#interface s0/0/0
R1(config-if)#ip address 192.168.200.1 255.255.255.252
R1(config-if)#clock rate 64000
R1(config-if)#description "Conectado a Router LP"
R1(config-if)#no shutdown
R1(config-if)#end
R1#copy running-conf startup-config
R1#

PARTE 6: CONFIGURACIÓN DE INTERFACE SERIAL DTE

R1#enable
R1#configure terminal
R2(config)#interface s0/0/1
R2(config-if)#ip address 192.168.200.2 255.255.255.252
R2(config-if)#description "Conectado a Router SC"
R2(config-if)#no shutdown
R2(config-if)#end
R2#copy running-conf startup-config
R2#

CONFIGURACIÓN BÁSICA DE ACCESO A UN SWITCH

PARTE 1: CONFIGURACION DE CONTRASEÑAS DE ACCESO Y MENSAJE DE INICIO

Switch#configure terminal
Switch(config)#hostname SW1
SW1(config)#enable secret santacruz
SW1(config)#no ip domain-lookup
SW1(config)#line console 0
SW1(config-line)#password andresibanez
SW1(config-line)#exec-timeout 2 0
SW1(config-line)#login
SW1(config-line)#loggin synchronous
SW1(config-line)#exit
SW1(config)#line vty 0 4
SW1(config-line)#password andresibanez
SW1(config-line)#exec-timeout 2 0
SW1(config-line)#login
SW1(config-line)#exit
SW1(config)#service password-encryption
SW1(config)#banner motd $"ESTE EQUIPO ES PRIVADO Y EL ACCESO ES RESTRINGIDO.
DESCONECTESE INMEDIATAMENTE SI NO ES UN USUARIO AUTORIZADO. LOS
INFRACTORES SERAN SOMETIDOS A LA LEY"$
SW1(config)#exit
SW1#copy running-config startup-config
SW1#

PARTE 2: CONFIGURACION DE ACCESO MEDIANTE USUARIO Y CONTRASEÑA

SW1#configure terminal
SW1(config)#username edmundo secret andresibanez
SW1(config)#line console 0
SW1(config-line)#login local
SW1(config-line)#exit
SW1(config)#line vty 0 4
SW1(config-line)#login local
SW1(config-line)#end
SW1#copy running-config startup-config

PARTE 3: CONFIGURACIÓN DE ACCESO REMOTO MEDIANTE SSH

SW1#configure terminal
SW1(config)#ip domain-name competencia.com
SW1(config)#username edmundo privilege 15 secret andresibanez
SW1(config)#username dito privilege 1 secret andresibanez
SW1(config)#line vty 0 4
SW1(config-line)#privilege level 15
SW1(config-line)#login local
SW1(config-line)#transport input ssh
SW1(config-line)#exit
SW1(config)#crypto key generate rsa

The name for the keys will be: SW1.competencia.com


Choose the size of the key modulus in the range of 360 to 2048 for your
General Purpose Keys. Choosing a key modulus greater than 512 may take
a few minutes.

How many bits in the modulus [512]: 1024


% Generating 1024 bit RSA keys, keys will be non-exportable...[OK]

SW1(config)#ip ssh time-out 90


SW1(config)#ip ssh authentication-retries 2
SW1(config)#exit
SW1#copy running-config startup-config
SW1#

PARTE 4: CONFIGURACIÓN DE LA VLAN DE ADMINISTRACIÓN

SW1#config t
SW1(config)#vlan 80
SW1(config-vlan)#name adm
SW1(config-vlan)#exit
SW1(config)#interface fa0/1
SW1(config-if)#switchport mode access
SW1(config-if)#switchport access vlan 80
SW1(config-if)#no shutdown
SW1(config-if)#end
SW1#copy running-config startup-config
SW1#
SW1(config)#interface vlan 80
SW1(config-if)#ip address 192.168.100.3 255.255.255.0
SW1(config-if)#no shutdown
SW1(config-if)#end
SW1#copy running-config startup-config
SW1#

You might also like